• Plans & Pricing (On Sale!)
  • Client Login
Web Hosting Blog from MonsterMegs Web Hosting Blog from MonsterMegs
  • Plans & Pricing (On Sale!)
  • Client Login

OpenSSL (Heartbleed) Patched on all MonsterMegs Servers

  • Admin
  • April 8, 2014
  • 2 minute read
OpenSSL (Heartbleed) Patched on all MonsterMegs Servers 1

As of 9:30AM (CST) on April 8, 2014, all MonsterMegs servers vulnerable to CVE-2014-0160 (Heartbleed) OpenSSL security bug have been patched. This security vulnerability is a widespread issue affecting operating systems globally and not an issue specific to MonsterMegs. OpenSSL is a toolkit which implements SSL/TLS protocols as well as general cryptography for various operating systems. This vulnerability can provide a back door for attackers to gain access to confidential information.

CentOS/Cloudlinux released an official OpenSSL patch removing the recently discovered vulnerabilities. OpenSSL was upgraded seamlessly. However, all services linked against the older vulnerable version of OpenSSL had to be restarted to apply the newly patched OpenSSL version. These services include: Apache, Litespeed, cpanel, and various other services requiring SSL.

Table of Contents
1. What is the Heartbleed bug?
2. How do I know if I am vulnerable?
3. How do I protect myself from the Heartbleed bug?
4. How do I know if I have already been affected?

What is the Heartbleed bug?

The Heartbleed Bug is a serious vulnerability in the popular OpenSSL cryptographic software library. This weakness allows stealing the information protected, under normal conditions, by the SSL/TLS encryption used to secure the Internet. SSL/TLS provides communication security and privacy over the Internet for applications such as web, email, instant messaging (IM) and some virtual private networks (VPNs).

The Heartbleed bug allows anyone on the Internet to read the memory of the systems protected by the vulnerable versions of the OpenSSL software. This compromises the secret keys used to identify the service providers and to encrypt the traffic, the names and passwords of the users and the actual content. This allows attackers to eavesdrop on communications, steal data directly from the services and users and to impersonate services and users.

How do I know if I am vulnerable?

OpenSSL versions 1.0.1 through 1.0.1f are vulnerable to attack. If you are currently running one of these versions of OpenSSL, you are vulnerable. We have, however, already patched our servers to ensure your security.

A a tool has also been released by a 3rd party to check if your site is currently vulnerable to the Heartbleed bug.

How do I protect myself from the Heartbleed bug?

If you are a MonsterMegs customer, we have already patched it for you, so that the server that houses your account cannot be exploited.

How do I know if I have already been affected?

Unfortunately, due to the nature of this exploit, there is not a way to identify if you have been attacked. If you think you may have been attacked, we recommend that you update your SSL keys and passwords to ensure your security; not only within your hosting account, but on social media accounts like Facebook or Twitter, email accounts, and bank accounts.

Share 0
Tweet 0
Pin it 0
Share 0
Share 0
You May Also Like
Stay in the Loop with Our New Service Status Page 2
View Post
  • 2 min

Stay in the Loop with Our New Service Status Page

  • February 24, 2023
Boost Your WordPress Site's Speed with LiteSpeed Cache 3
View Post
  • 5 min

Boost Your WordPress Site’s Speed with LiteSpeed Cache

  • December 29, 2022
Introducing Mail.Baby (MailChannels) Email Delivery 4
View Post
  • 3 min

Introducing Mail.Baby (MailChannels) Email Delivery

  • February 18, 2022
Introducing Imunify360 - AI Powered Security Suite 5
View Post
  • 4 min

Introducing Imunify360 – AI Powered Security Suite

  • April 5, 2021
PHP 8 Now Available on All Servers 6
View Post
  • 2 min

PHP 8 Now Available on All Servers

  • January 13, 2021
What is Semi-Dedicated Hosting? 7
View Post
  • 4 min

What is Semi-Dedicated Hosting?

  • November 23, 2020
Buying Web Hosting With Bitcoin 8
View Post
  • 3 min

Buying Web Hosting With Bitcoin

  • November 17, 2020
Automatic Wordpress Backups Using CodeGuard 9
View Post
  • 2 min

Automatic WordPress Backups Using CodeGuard

  • October 21, 2020

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

  • Stay in the Loop with Our New Service Status Page 10
    Stay in the Loop with Our New Service Status Page
    • February 24, 2023
  • Boost Your WordPress Site's Speed with LiteSpeed Cache 11
    Boost Your WordPress Site’s Speed with LiteSpeed Cache
    • December 29, 2022
  • Introducing Mail.Baby (MailChannels) Email Delivery 12
    Introducing Mail.Baby (MailChannels) Email Delivery
    • February 18, 2022
  • Introducing Imunify360 - AI Powered Security Suite 13
    Introducing Imunify360 – AI Powered Security Suite
    • April 5, 2021
  • PHP 8 Now Available on All Servers 14
    PHP 8 Now Available on All Servers
    • January 13, 2021

Subscribe now to our newsletter

  • Shared Hosting
  • Reseller Hosting
  • Semi-Dedicated Hosting
  • Domain Registration
© 2022 MONSTERMEGS, INC. ALL RIGHTS RESERVED

Input your search keywords and press Enter.